Fix GHA

[misrasaurabh1]

PR Type

Enhancement

---

Description

• Use pull_request trigger for workflow

• Remove dynamic environment setting

• Delete Validate PR step

• Simplify actions/checkout parameters

---

Changes walkthrough 📝

	Relevant files
Configuration changes	codeflash-optimize.yaml Simplify optimize workflow config                                                .github/workflows/codeflash-optimize.yaml Changed trigger from pull_request_target to pull_request Removed environment conditional configuration Deleted Validate PR step and related checks Simplified actions/checkout parameters +1/-27

---

Need help?

Type /help how to ... in the comments thread for any questions about PR-Agent usage.

Check out the documentation for more information.

[github-actions]

PR Reviewer Guide 🔍

Here are some key observations to aid the review process:

⏱️ Estimated effort to review: 2 🔵🔵⚪⚪⚪

🧪 No relevant tests

🔒 No security concerns identified

⚡ Recommended focus areas for review Checkout Behavior The default actions/checkout@v4 without an explicit ref may checkout the merge commit or base branch rather than the PR head. Verify that the intended code version is checked out for the workflow. - name: 🛎️ Checkout uses: actions/checkout@v4 with: fetch-depth: 0 Secret Availability Using the pull_request trigger means GitHub secrets won’t be available for workflows triggered by forked PRs. Ensure this is intended or add handling for missing secrets to avoid runtime errors. POSTHOG_API_KEY: ${{ secrets.POSTHOG_API_KEY }} CODEFLASH_API_KEY: ${{ secrets.CODEFLASH_API_KEY }}

[github-actions]

PR Code Suggestions ✨

Explore these optional code suggestions:

Category	Suggestion	Impact
Security	restore pull_request_target trigger If you need access to secrets for external fork PRs, use pull_request_target instead of pull_request. This avoids blocked secret injection into untrusted workflows and restores correct permissions for secrets-based steps. .github/workflows/codeflash-optimize.yaml [4-6] +pull_request_target: + paths: + - '**' pull_request: paths: - '**' Suggestion importance[1-10]: 6 __ Why: Using pull_request_target restores secret access for PR workflows and ensures steps with secrets run correctly, though it reintroduces security considerations for untrusted code.	Low
General	restrict pull_request event types Add a types filter to the pull_request trigger to only run on opened, synchronized, or reopened events. This prevents redundant runs on minor PR events like labeling or review comments. .github/workflows/codeflash-optimize.yaml [4-6] pull_request: + types: [opened, synchronize, reopened] paths: - '**' Suggestion importance[1-10]: 5 __ Why: Adding types reduces redundant workflow runs on minor PR updates without affecting core functionality, providing a moderate CI efficiency gain.	Low